RE: I'll have salad with my key... from Mike Just on 2002-03-06 (www-xkms@w3.org from March 2002)

From: Mike Just <Mike.Just@entrust.com>
Date: Wed, 6 Mar 2002 10:07:48 -0500
To: "'Martin Aparicio'" <martin.aparicio@tekki.se>, "'www-xkms@w3.org'" <www-xkms@w3.org>
Message-ID: <9A4F653B0A375841AC75A8D17712B9C90257A924@sottmxs04.entrust.com>

I think I'd prefer to not have to deal with extending <ds:KeyInfo>.  If
others agree, it might be sufficient to have <Respond> correspond to
elements from <KeyBindingType> instead of <ds:KeyInfo>.

Mike

-----Original Message-----
From: Martin Aparicio [mailto:martin.aparicio@tekki.se]
Sent: Wednesday, March 06, 2002 9:41 AM
To: Mike Just; www-xkms@w3.org
Subject: Re: I'll have salad with my key...

Being able to request for <KeyID> element could also be useful. Could maybe
<KeyBindingType> be a sub-element of  <ds:KeyInfo> ?

/Martin Aparicio

----- Original Message ----- 
From: Mike  <mailto:Mike.Just@entrust.com> Just 
To: www-xkms@w3.org <mailto:www-xkms@w3.org>  ;
'stephen.farrell@baltimore.ie' <mailto:'stephen.farrell@baltimore.ie'>  
Sent: Wednesday, March 06, 2002 2:34 PM
Subject: RE: I'll have salad with my key...

I just want to be clear with this issue, and I also have an (potentially)
interesting observation. 

As part of <Validate>, I can send a <Query> which is of type
<KeyBindingType>.  The <KeyBindingType> also includes <ds:KeyInfo>.  Perhaps
interestingly, the <Respond> element is restricted to names of sub-elements
from <ds:KeyInfo>, in addition to the element <Private>.  I wonder if Joseph
is asking that the element choices with <Query> or within <Respond> be
extensible (his language suggests the former, but I wonder if he also means
the latter).

From what Stephen says below, <Query> is already extensible, since
<ds:KeyInfo> is extensible. I presume <Respond> would be as well, for the
same reason.

Now, shouldn't <Respond> support subelements from <KeyBindingType> instead
of <ds:KeyInfo>? For example, as it stands now, the client can't request
whether or not the <ValidityInterval> or <KeyUsage> are returned as part of
the <ValidateResult>. These are sub-elements of <KeyBindingType> and not
<ds:KeyInfo>.

Cheers, 
Mike  

-----Original Message----- 
From: Stephen Farrell [ mailto:stephen.farrell@baltimore.ie
<mailto:stephen.farrell@baltimore.ie> ] 
Sent: Tuesday, March 05, 2002 12:43 PM 
To: www-xkms@w3.org 
Subject: I'll have salad with my key... 

Joseph worried: 
> The KeyBinding is not extensible, what if I want to query or return 
> different trust semantics than those provided by XKMS? 

Well, given that it contains a ds:KeyInfo and I can put my granny's 
photo in there, what more do we need? 

Stephen. 

-- 
____________________________________________________________ 
Stephen Farrell                                            
Baltimore Technologies,   tel: (direct line) +353 1 881 6716 
39 Parkgate Street,                     fax: +353 1 881 7000 
Dublin 8.                mailto:stephen.farrell@baltimore.ie
<mailto:stephen.farrell@baltimore.ie>  
Ireland                             http://www.baltimore.com
<http://www.baltimore.com>

Received on Wednesday, 6 March 2002 10:08:21 UTC